> Key to the issue is I fail to see how the highly intrusive security work > done for 3.4.3 can possibly be backported.
The Debian patches for CVE-2018-11805 and CVE-2019-12420 onto 3.4.2 are roughly 100kb in size.
- Re: ANNOUNCE: Apache SpamAssassin 3.4.4 av... Kevin A. McGrail
- Re: ANNOUNCE: Apache SpamAssassin 3.4.... Matus UHLAR - fantomas
- Re: ANNOUNCE: Apache SpamAssassin ... Henrik K
- Re: ANNOUNCE: Apache SpamAssa... Matus UHLAR - fantomas
- Re: ANNOUNCE: Apache Spam... Henrik K
- Re: ANNOUNCE: Apache Spam... Damian
- What am I dping wrong as ... Anders Gustafsson
- Re: What am I dping wrong... Damian
- Re: ANNOUNCE: Apache Spam... RW
- Re: ANNOUNCE: Apache Spam... Kevin A. McGrail
- Re: ANNOUNCE: Apache Spam... Damian
- Re: ANNOUNCE: Apache Spam... Matus UHLAR - fantomas
- Re: ANNOUNCE: Apache Spam... Matus UHLAR - fantomas
- Re: ANNOUNCE: Apache Spam... John Hardin
- Re: ANNOUNCE: Apache Spam... Chris
- [CVE-2020-1931] Apache SpamAssassin Nefarious rule ... Kevin A. McGrail
- [CVE-2020-1930] Apache SpamAssassin Nefarious ... Kevin A. McGrail
- Re: ANNOUNCE: Apache SpamAssassin 3.4.4 available Alex Woick
- Re: ANNOUNCE: Apache SpamAssassin 3.4.4 available Henrik K
